โœ“

Omar Albalouli ยท Senior DevOps Engineer ยท DevSecOps & Cloud Security

pipeline #442 ยท branch main ยท triggered by recruiter ยท 4+ years
โ— passing
โœ“
๐Ÿงฑ
electronic
2022
โœ“
๐Ÿงช
aspire it
2023
โœ“
๐Ÿš€
network in
2024
โ†ป
๐Ÿ“ก
cfi
2025

// career pipeline โ€” each stage is a role, oldest โ†’ newest.

Stages โ€” expand for logs

โœ“Senior DevOps Engineer ยท CFIJanuary 2025 โ†’ now
$ Leading DevSecOps across the SDLC for a regional fintech.
$ Lead DevSecOps across the SDLC โ€” threat-modeling services and embedding SAST (SonarQube), SCA, and container image scanning into CI/CD, reducing high/critical vulnerabilities reaching production by 90% and auto-blocking insecure builds. โœ“
$ Centralized secrets and credentials across all applications with HashiCorp Vault, eliminating hard-coded secrets and enabling short-lived, dynamic credentials. โœ“
$ Secured internet-facing workloads with Cloudflare (WAF, DDoS protection, DNS, and zero-trust access). โœ“
$ Operate business-critical, highly available Kubernetes clusters on self-managed AWS EC2, sustaining 99.95% uptime with zero-downtime upgrades. โœ“
$ Provision cloud and on-prem infrastructure as code with Terraform for repeatable, version-controlled deployments. โœ“
$ Build and maintain GitHub Actions CI/CD pipelines with automated testing, security gates, and deployment across all services. โœ“
$ Design, provision, and operate OpenSearch clusters on AWS alongside Prometheus and Grafana for proactive monitoring, alerting, and security visibility. โœ“
$ Implement New Relic APM to surface latency, errors, and bottlenecks across services. โœ“
$ Administer and secure on-prem MySQL, PostgreSQL, and MongoDB, plus highly available RabbitMQ and Kafka on Kubernetes, with backup, replication, and HA strategies. โœ“
โœ“Cloud Engineer ยท Network InternationalJune 2024 โ†’ January 2025
$ Managed 10+ Kubernetes clusters across Azure, AWS, OCI, and on-premises, ensuring scalability and high availability. โœ“
$ Architected and deployed high-availability Kubernetes clusters on-premises using Ansible, Kubeadm, MetalLB, and Longhorn. โœ“
$ Designed and implemented infrastructure as code (IaC) using Terraform. โœ“
$ Created and maintained CI/CD pipelines using Azure DevOps, TeamCity, Python, and Bash scripting. โœ“
$ Automated the release process to a single click โ€” Slack notifications and Confluence release notes. โœ“
$ Integrated SAST and SCA tools (Prisma Cloud, Veracode, SonarQube) into CI/CD to enforce application security and compliance. โœ“
โœ“DevOps Engineer ยท Aspire IT Services (Client: Network International)March 2023 โ†’ June 2024
$ Deployed and managed AWS resources including EC2 and EKS clusters using Terraform. โœ“
$ Deployed and managed containerized applications using EKS and Helm. โœ“
$ Designed and implemented CI/CD pipelines using AWS CodePipeline and AWS CodeBuild. โœ“
$ Partnered with development and QA teams to containerize applications and automate EKS deployment pipelines, reducing release friction and environment drift. โœ“
โœ“DevOps / Linux System Administrator ยท Electronic Health Solutions (EHS - Hakeem)September 2022 โ†’ February 2023
$ Managed critical environments with zero downtime, ensuring continuous availability and reliability. โœ“
$ Managed on-premises Red Hat Linux servers for optimal performance and security. โœ“
$ Implemented and maintained CI/CD pipelines using Jenkins. โœ“
$ Developed and maintained Ansible playbooks for configuration and deployment automation. โœ“
$ Configured and managed monitoring tools: Nagios, Prometheus, and Grafana. โœ“
$ Configured and managed high-available load balancers using HAProxy and Keepalived. โœ“

// skills.lock

KubernetesAWSTerraformLinuxPythonAzureHelmTeamCityAzure DevOpsGitHub ActionsHashiCorp VaultCloudflareSonarQubeTrivyDevSecOpsPenetration TestingVulnerability Research (CVE)PrometheusGrafanaOpenSearchNew RelicAnsibleArgo CDKafkaRabbitMQMySQLPostgreSQLMongoDBNetworkingVulnerability ManagementSAST / SCA / DASTContainer SecurityThreat Modeling

// certifications.yml

๐Ÿ† DevOps on AWS Specialization (AWS ยท Coursera)

Education

BSc, Computer and Network Engineering โ€” Al Balqa Applied University, Amman (2022) ยท GPA 3.55

Security Research

Discovered and responsibly disclosed an authorization bypass in Moodle (open-source LMS) โ€” CVE-2022-40208 (CWE-285): students could circumvent sequential quiz navigation via web services. Performed application and source-code analysis, reported upstream, and coordinated remediation through a responsible-disclosure process.
๐ŸŽจ Theme & rรฉsumรฉ โ–ฒ
Choose a style
โฌ‡ Download / Print ๐Ÿ“„ View as plain rรฉsumรฉ